82c86545c255176acd30c88e83f0ae22_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

82c86545c255176acd30c88e83f0ae22_JaffaCakes118
Size

292KB
MD5

82c86545c255176acd30c88e83f0ae22
SHA1

4b13eaf00e58b4d605de8e25f3b9b009f3f2a810
SHA256

a294b8c5e7774bc60a9e80d4d3ff814d61695495596f891ea783d5ae686a03c1
SHA512

bcfb737a43333fc567c47b4548613e259213ec4b0339b5f3b4ab0de3b91fed8f56966af3e5ae8e7c5a3000fcb93db2f09c4f04e0b29f78467bd3c02c402e2d12
SSDEEP

6144:aQyZS2Vs65BnkRi1dXEEFYZA1KwueKoGUE7IfKAdMIl:aQSS2VTkiPXBtFSmEsf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82c86545c255176acd30c88e83f0ae22_JaffaCakes118

Files

82c86545c255176acd30c88e83f0ae22_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e6e71c9fe1bc5c251c2d35d6dc9c011a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\enper\eu

Imports

user32

CharUpperBuffA
SetWindowTextA
GetMenuState
ScreenToClient
CallWindowProcW
ModifyMenuA
RegisterWindowMessageA
SetDlgItemTextA
SetActiveWindow
EnableMenuItem
GetPropA
LoadBitmapW
SystemParametersInfoW
GetSystemMetrics
BeginPaint
DrawTextA
LoadStringA
SendMessageA
RemoveMenu
FindWindowA
GetClipboardOwner
GetNextDlgGroupItem
ClientToScreen
RegisterClipboardFormatW
ScrollWindow
IsWindowUnicode
IsWindow
FillRect
GetMenuDefaultItem
DrawMenuBar
EqualRect
RegisterClassW
SetWindowRgn
EndPaint
AdjustWindowRectEx
GetDoubleClickTime
HideCaret
IsZoomed
SetRectEmpty
DeleteMenu
SetMenu
SetForegroundWindow
PostMessageA
GetWindowThreadProcessId
GetMenuItemID
IsChild
FindWindowExW
EnableWindow
EndDeferWindowPos
GetMenuStringA
ReuseDDElParam
CallWindowProcA
DispatchMessageA
GetWindowTextA
GetWindow
CreateDialogIndirectParamW
SetWindowLongA
ValidateRect
LoadMenuA
SetMenuItemBitmaps
SetCursorPos
LoadIconA
GetWindowPlacement
DestroyMenu
SendDlgItemMessageW
DrawFrameControl
BringWindowToTop
GetClassLongA
CreateMenu
InvalidateRect
UnpackDDElParam
ExitWindowsEx
GetWindowTextLengthA
DeferWindowPos
SetWindowLongW
CreateDialogIndirectParamA
GetCursorPos
GetAsyncKeyState
CopyImage
SetScrollInfo
SetWindowContextHelpId
MessageBoxW
ShowCaret
GetNextDlgTabItem
GetMenuCheckMarkDimensions
PeekMessageW
IsDlgButtonChecked
GetMenu
GetDesktopWindow
GetWindowTextLengthW
IsWindowVisible
GetDlgItem
MessageBoxA
GetWindowTextW
MoveWindow
GetCaretPos
CopyIcon
UnregisterClassW
SetFocus
DefWindowProcA
SetClipboardData
SendDlgItemMessageA
DialogBoxParamA
GetSysColorBrush
CheckDlgButton
PostThreadMessageA
ModifyMenuW
InvalidateRgn
InsertMenuA
GetWindowRect
AppendMenuA
CallNextHookEx
IsRectEmpty
DrawIconEx
LoadCursorW
AdjustWindowRect
GetCursor
SetTimer
ExcludeUpdateRgn
LoadAcceleratorsA
CharNextA
GetMenuItemInfoA
RegisterClassExW
SetWindowsHookExW
SystemParametersInfoA
SetDlgItemInt
TranslateAcceleratorA
OpenClipboard
CopyAcceleratorTableA
EnumChildWindows
IsWindowEnabled
RegisterClassA
ReleaseDC
GetWindowDC
GetKeyboardLayout
ReleaseCapture
BeginDeferWindowPos
SetScrollPos
RegisterClipboardFormatA
GetCapture
CreatePopupMenu
GetMenuStringW
RemovePropA
TrackPopupMenu
wsprintfA
WaitMessage
InflateRect
CreateWindowExW
DestroyIcon
WindowFromPoint
GetLastActivePopup
GetSysColor
IsDialogMessageW
GetClientRect
DrawEdge
SetWindowTextW
PtInRect
DrawStateW
GrayStringA
wsprintfW
SetWindowPos
ToAsciiEx
CloseClipboard
RegisterWindowMessageW
SetCapture
UpdateWindow
DefFrameProcA
ShowScrollBar
TranslateMDISysAccel
OffsetRect
TabbedTextOutA
AppendMenuW
DestroyWindow
MapDialogRect
SetDlgItemTextW
GetFocus
GetMessageTime
CharUpperA
GetParent
IsIconic
KillTimer
GetTopWindow
PeekMessageA
LoadCursorA
SetCursor
GetClassNameA
MapWindowPoints
DrawIcon
SetWindowsHookExA
ScrollDC
GetMenuItemCount
DrawFocusRect
SetRect
GetUpdateRect
GetWindowLongA
GetDlgItemInt
PostQuitMessage
LockWindowUpdate
IsMenu
GetActiveWindow
UnregisterClassA
GetClassNameW
CopyRect
RedrawWindow
LoadBitmapA
EnableScrollBar
CreateWindowExA
DestroyCursor
DrawTextW
SetWindowPlacement
DispatchMessageW
GetScrollPos
GetMessageW
GetDC
GetDlgCtrlID
FindWindowExA
InvertRect
UnhookWindowsHookEx
GetSystemMenu
CheckMenuItem
SetMenuDefaultItem
GetClassInfoA
PostThreadMessageW
GetMessageA
DrawStateA
GetSubMenu
IsDialogMessageA
GetKeyState
IsCharLowerA
RemovePropW
EndDialog
FrameRect
MessageBeep
InsertMenuW
CreateCaret
DefWindowProcW
RegisterClassExA
GetMenuItemInfoW
GetMessagePos
AttachThreadInput
ShowWindow
GetScrollRange
GetDCEx
TranslateMessage

ole32

IsAccelerator
CoRevokeClassObject
OleCreateMenuDescriptor
WriteClassStm
OleSetContainedObject
CreateBindCtx
CoRegisterClassObject
StgIsStorageILockBytes
CoCreateInstance
OleGetClipboard
OleUninitialize
CoGetMalloc
OleDestroyMenuDescriptor
OleSaveToStream
CLSIDFromProgID
GetHGlobalFromILockBytes
ProgIDFromCLSID
CoTaskMemRealloc
CoSuspendClassObjects
OleCreateLinkFromData
OleFlushClipboard
CoUninitialize
StgCreateDocfileOnILockBytes
CoGetClassObject
CoRegisterMessageFilter
OleGetIconOfClass
StgOpenStorageOnILockBytes
OleSetMenuDescriptor
GetClassFile
OleDuplicateData
StringFromCLSID
CreateFileMoniker
WriteClassStg
OleIsRunning
CreateStreamOnHGlobal
OleCreateStaticFromData
OleSetClipboard
CreateOleAdviseHolder
CoCreateGuid
CoTaskMemFree
DoDragDrop
CoDisconnectObject
CreateGenericComposite
StringFromGUID2
GetHGlobalFromStream
OleCreateLinkToFile
OleRegEnumVerbs
RevokeDragDrop
StgCreateDocfile
CreateDataAdviseHolder
CoTaskMemAlloc
CoInitialize
StgOpenStorage
CoFreeUnusedLibraries
OleSave
OleInitialize
CoResumeClassObjects
StgIsStorageFile
OleRegGetMiscStatus
OleIsCurrentClipboard
OleCreate
OleTranslateAccelerator
CreateILockBytesOnHGlobal
OleCreateFromFile
CoSetProxyBlanket
CLSIDFromString
CoInitializeSecurity
CoLockObjectExternal
CoInitializeEx
OleCreateFromData
OleRegGetUserType
ReleaseStgMedium

oleaut32

LoadTypeLi

shell32

DragFinish
SHGetPathFromIDListW
SHGetDesktopFolder
SHGetFileInfoA
Shell_NotifyIconW
SHGetFileInfoW
SHGetFolderPathW
SHBrowseForFolderW
ShellExecuteW
SHAppBarMessage
SHFileOperationA
SHChangeNotify
ExtractIconA
ord155
DragAcceptFiles
SHGetSpecialFolderLocation
ShellExecuteExA
SHBrowseForFolderA
ShellExecuteExW

shlwapi

PathAddBackslashA
SHDeleteValueA
SHDeleteKeyA

urlmon

IsValidURL
URLDownloadToFileA

kernel32

GetModuleFileNameA
SetEvent
ReleaseMutex
lstrlenW
GlobalFree
LocalFree
_lwrite
GetWindowsDirectoryA
GlobalGetAtomNameA
GetCPInfo
GlobalSize
IsBadReadPtr
GetSystemInfo
UnmapViewOfFile
MoveFileW
EnumResourceLanguagesW
CreateFileA
GetUserDefaultLCID
GetStartupInfoW
GetStringTypeA
CreateDirectoryW
FreeLibrary
GetLastError
ExitThread
_lread
GetTimeZoneInformation
TlsAlloc
GetCurrentProcessId
IsValidLocale
SetCurrentDirectoryW
InitializeCriticalSection
HeapSize
DeleteFileA
GlobalAddAtomA
GetModuleFileNameW
GetNumberFormatA
CreateFileMappingA
SuspendThread
LocalReAlloc
SetConsoleCtrlHandler
OpenMutexA
CompareStringA
FlushFileBuffers
ExitProcess
LoadLibraryW
LoadLibraryA
CompareFileTime
VirtualProtect
GetLocaleInfoW
GetThreadLocale
GetStringTypeW
LeaveCriticalSection
lstrcpynA
SleepEx
GetSystemTimeAsFileTime
GetComputerNameW
RaiseException
CreateDirectoryA
GetCurrentThreadId
GetFullPathNameW
GetDateFormatA
FindNextFileA
WinExec
LCMapStringW
SetHandleCount
RemoveDirectoryA
TerminateProcess
RtlUnwind
GlobalDeleteAtom
lstrcpyA
GetLogicalDrives
EnterCriticalSection
GetTickCount
GetFileAttributesA
SetFilePointer
WriteConsoleA
FindFirstFileA
Sleep
lstrcmpiA
WriteConsoleW
CloseHandle
GetCurrentThread
UnhandledExceptionFilter
LocalAlloc
GetEnvironmentStringsW
GetFileType
TlsSetValue
WaitForMultipleObjects
MultiByteToWideChar
ConvertDefaultLocale
TlsGetValue
WideCharToMultiByte
HeapDestroy
HeapFree
FindNextChangeNotification
GetLogicalDriveStringsA
WriteFile
FatalAppExitA
HeapAlloc
GlobalAlloc
GetSystemDefaultLangID
ResetEvent
FormatMessageA
FreeEnvironmentStringsA
TlsFree
FindClose
FindResourceExA
CreateProcessA
VirtualFree
LockResource
HeapValidate
GetCurrentProcess
GetVersion
SetLastError
SetEnvironmentVariableA
CreateFileW
SearchPathA
CreateEventW
SystemTimeToFileTime
GetCommandLineA
WaitForSingleObject
ReadFile
CopyFileA
SetUnhandledExceptionFilter
GetVersionExW
GetEnvironmentStrings
SizeofResource
IsValidCodePage
GetFileTime
GetModuleHandleW
GetConsoleCP
SetStdHandle
InterlockedDecrement
GetDriveTypeA
GetEnvironmentVariableA
IsBadCodePtr
IsBadWritePtr
GlobalLock
GetVolumeInformationA
FindFirstFileW
DebugBreak
GetACP
SetThreadPriority
LockFile
HeapCreate
GetTempPathA
GetStdHandle
GetCurrentDirectoryA
GetLocaleInfoA
GetConsoleOutputCP
QueryPerformanceCounter
GetLocalTime
GetPrivateProfileIntA
VirtualAlloc
GlobalFlags
TerminateThread
GetDateFormatW
GetSystemDirectoryA
GetProcAddress
SetPriorityClass
WritePrivateProfileStringW
GetVersionExA
InterlockedCompareExchange
SetEndOfFile
GetProfileStringA
ResumeThread
GlobalUnlock
GetStartupInfoA
GetModuleHandleA
MulDiv
LCMapStringA
InterlockedExchange
FileTimeToSystemTime
VirtualQuery
EnumResourceLanguagesA
SetErrorMode
UnlockFile
CreateEventA
GetOEMCP
GlobalGetAtomNameW
lstrlenA
GetFileInformationByHandle
GetDiskFreeSpaceA
GlobalHandle
WritePrivateProfileStringA
SetCurrentDirectoryA
lstrcatA
SetFileTime
GetSystemTime
OutputDebugStringA
CreateMutexA
DeleteCriticalSection
CompareStringW
InterlockedIncrement
EnumSystemLocalesA
FileTimeToLocalFileTime
FreeEnvironmentStringsW
QueryPerformanceFrequency
FindResourceA
GetThreadPriority
LoadResource
HeapReAlloc
FindCloseChangeNotification

comctl32

ImageList_Create
ImageList_Write
ImageList_Replace
ImageList_DragLeave
ImageList_Remove
ImageList_Read
ImageList_GetImageCount
ImageList_AddMasked
ImageList_SetOverlayImage
ImageList_ReplaceIcon
PropertySheetW
ord17
ImageList_GetBkColor
PropertySheetA
_TrackMouseEvent
ImageList_GetDragImage
DestroyPropertySheetPage
ImageList_Draw
ImageList_BeginDrag
ImageList_DrawIndirect
ImageList_GetIcon
ImageList_DrawEx
ImageList_Add
ImageList_LoadImageA
ImageList_DragShowNolock
ImageList_Merge
CreatePropertySheetPageA
InitCommonControlsEx
ImageList_GetIconSize
ImageList_DragMove
ImageList_SetBkColor
ImageList_Destroy
ImageList_GetImageInfo

wsock32

WSACleanup

advapi32

RegSetValueExA
GetTokenInformation
OpenThreadToken
RegCloseKey
SetSecurityDescriptorOwner
LookupAccountNameW
RegCreateKeyExW
RegQueryInfoKeyA
AllocateAndInitializeSid
RegQueryValueExA
RegSetValueExW
SetSecurityDescriptorGroup
InitializeAcl
RegisterEventSourceW
RegOpenKeyExA
RegDeleteKeyW
DeleteService
RegOpenKeyA
GetUserNameW
StartServiceA
OpenServiceA
ChangeServiceConfigA
ControlService
CopySid
InitializeSecurityDescriptor
QueryServiceStatus
RegOpenKeyW
GetFileSecurityA
OpenSCManagerA
SetFileSecurityA
RegisterServiceCtrlHandlerA
RegEnumKeyExA
IsValidSid
OpenSCManagerW
SetSecurityDescriptorDacl
SetServiceStatus
OpenServiceW
RegEnumValueA
OpenProcessToken
IsValidSecurityDescriptor
RegEnumKeyExW
RevertToSelf
CryptGetHashParam
RegDeleteKeyA
EqualSid
ReportEventW
RegQueryValueA
RegCreateKeyA
AddAce
RegCreateKeyExA
RegDeleteValueA
RegEnumKeyA
RegQueryInfoKeyW
RegDeleteValueW
GetSecurityInfo
CloseServiceHandle
SetEntriesInAclW
RegQueryValueExW
RegSetValueA
AdjustTokenPrivileges
RegOpenKeyExW
GetLengthSid
AddAccessAllowedAce

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6e71c9fe1bc5c251c2d35d6dc9c011a

Headers

File Characteristics

PDB Paths

Imports

user32

ole32

oleaut32

shell32

shlwapi

urlmon

kernel32

comctl32

wsock32

advapi32

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 88KB - Virtual size: 84KB

.data Size: 72KB - Virtual size: 100KB

.rsrc Size: 44KB - Virtual size: 43KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 88KB - Virtual size: 84KB

.data
Size: 72KB - Virtual size: 100KB

.rsrc
Size: 44KB - Virtual size: 43KB